STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 5 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

SI-4

System and Information IntegrityRev 3

System Monitoring

CCI Identifiers (22)

CCI-001252The organization monitors events on the information system in accordance with organization-defined monitoring objectives and detects information system attacks.CCI-001253Defines the objectives of monitoring for attacks and indicators of potential attacks on the system.CCI-001254The organization identifies unauthorized use of the information system.CCI-001255Invoke internal monitoring capabilities or deploy monitoring devices strategically within the system to collect organization-determined essential information.CCI-001256Invoke internal monitoring capabilities or deploy monitoring devices at ad hoc locations within the system to track specific types of transactions of interest to the organization.CCI-001257Adjust the level of system monitoring activity when there is a change in increased risk to organizational operations and assets, individuals, other organizations, or the Nation.CCI-001258Obtain legal opinion with regard to system monitoring activities.CCI-002641Monitor the system to detect attacks and indicators of potential attacks in accordance with organization-defined monitoring objectives.CCI-002642Monitor the system to detect unauthorized local connections.CCI-002643Monitor the system to detect unauthorized network connections.CCI-002644Monitor the system to detect unauthorized remote connections.CCI-002645Defines the techniques and methods to be used to identify unauthorized use of the system.CCI-002646Identify unauthorized use of the system through organization-defined techniques and methods.CCI-002647The organization protects information obtained from intrusion-monitoring tools from unauthorized access.CCI-002648The organization protects information obtained from intrusion-monitoring tools from unauthorized modification.CCI-002649The organization protects information obtained from intrusion-monitoring tools from unauthorized deletion.CCI-002650Defines the system monitoring information that is to be provided the organization-defined personnel or roles.CCI-002651Defines the personnel or roles that are to be provided organization-defined system monitoring information.CCI-002652Defines the frequency at which the organization will provide the organization-defined system monitoring information to organization-defined personnel or roles.CCI-002653The organization provides organization-defined information system monitoring information to organization-defined personnel or roles as needed or per organization-defined frequency.deprecated CCI-002654Provide organization-defined system monitoring information to organization-defined personnel or roles as needed, and/or per organization-defined frequency.CCI-004967Analyze detected events and anomalies.

Linked STIG Checks (5)

Across 2 STIGs. Click to expand.